14 matches found
CVE-2024-34947
Quanxun Huiju Network Technology Beijing Co.,Ltd IK-Q3000 3.7.10 x64 Build202401261655 was discovered to be vulnerable to an ICMP redirect attack...
Arbitrary File Upload
Overview Affected versions of this package are vulnerable to Arbitrary File Upload due to improper validation of file extensions. An attacker can bypass SVG file sanitization protections by initially uploading a file with a permitted extension and subsequently renaming it to an .svg extension...
GHSA-2QJP-FG8C-G878 vxe-table Cross-site Scripting vulnerability
A vulnerability, which was classified as problematic, has been found in xuliangzhan vxe-table up to 3.7.9. This issue affects the function export of the file packages/textarea/src/textarea.js of the component vxe-textarea. The manipulation of the argument inputValue leads to cross site scripting...
CVE-2023-1001 xuliangzhan vxe-table vxe-textarea textarea.js export cross site scripting
A vulnerability, which was classified as problematic, has been found in xuliangzhan vxe-table up to 3.7.9. This issue affects the function export of the file packages/textarea/src/textarea.js of the component vxe-textarea. The manipulation of the argument inputValue leads to cross site scripting...
CVE-2023-1001
The CVE-2023-1001 entry concerns xuliangzhan vxe-table (up to 3.7.9) where the textarea.js export function inputValue is vulnerable to cross-site scripting. The vulnerability is exploitable remotely and is caused by improper handling of inputValue in the vxe-textarea component. Upgrade to version...
PT-2024-26264 · Quanxun Huiju Network Technology · Ik-Q3000
Name of the Vulnerable Software and Affected Versions: Quanxun Huiju Network TechnologyBeijing Co.,Ltd IK-Q3000 version 3.7.10 Description: The issue allows attackers to cause a Denial of Service DoS when attempting to make TCP connections. Recommendations: For Quanxun Huiju Network...
Quanxun Huiju Network Technology IK-Q3000 安全漏洞
Quanxun Huiju Network Technology IK-Q3000 is a router from Quanxun Huiju Network Technology China. A security vulnerability exists in Quanxun Huiju Network Technology IK-Q3000 version 3.7.10 x64 Build202401261655, which originates from a vulnerability that allows an attacker to cause a denial of...
PT-2024-26263 · Quanxun Huiju Network Technology · Ik-Q3000
Name of the Vulnerable Software and Affected Versions: Quanxun Huiju Network Technology Beijing Co.,Ltd IK-Q3000 version 3.7.10 Description: The issue concerns an ICMP redirect attack. There is no information provided about the estimated number of potentially affected devices worldwide or details...
Quanxun Huiju Network Technology IK-Q3000 安全漏洞
Quanxun Huiju Network Technology IK-Q3000 is a router from Quanxun Huiju Network Technology China. A security vulnerability exists in Quanxun Huiju Network Technology IK-Q3000 version 3.7.10 x64 Build202401261655, which is vulnerable to ICMP redirection attacks...
Python < 3.6.13, 3.7.x < 3.7.10, 3.8.x < 3.8.7, 3.9.x < 3.9.1 Race Condition Vulnerability (bpo-40791) - Windows
Python is prone to a race condition vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python"; ifdescription...
Python < 3.6.13, 3.7.x < 3.7.10, 3.8.x < 3.8.7, 3.9.x < 3.9.1 DoS Vulnerability (bpo-42103) - Windows
Python is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python";...
Python < 3.6.13, 3.7.x < 3.7.10, 3.8.x < 3.8.7, 3.9.x < 3.9.1 Python Issue (bpo-41944) - Mac OS X
Python is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python";...
Python < 3.6.13, 3.7.x < 3.7.10, 3.8.x < 3.8.8, 3.9.x < 3.9.2 Web Cache Poisoning Vulnerability - Linux
Python is prone to a web cache poisoning vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python";...
kernel: sock_diag: out-of-bounds access to sock_diag_handlers[]
Array index error in the sockdiagrcvmsg function in net/core/sockdiag.c in the Linux kernel before 3.7.10 allows local users to gain privileges via a large family value in a Netlink message...